8 matches found
SUSE CVE-2025-71113
In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - zero initialize memory allocated via sockkmalloc Several crypto user API contexts and requests allocated with sockkmalloc were left uninitialized, relying on callers to set fields explicitly. This resulted in the...
UBUNTU-CVE-2025-71113
In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - zero initialize memory allocated via sockkmalloc Several crypto user API contexts and requests allocated with sockkmalloc were left uninitialized, relying on callers to set fields explicitly. This resulted in the...
CVE-2025-71113 crypto: af_alg - zero initialize memory allocated via sock_kmalloc
In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - zero initialize memory allocated via sockkmalloc Several crypto user API contexts and requests allocated with sockkmalloc were left uninitialized, relying on callers to set fields explicitly. This resulted in the...
CVE-2025-71113
The CVE-2025-71113 issue is in the Linux kernel crypto af_alg path. Several crypto user API contexts and requests allocated with sock_kmalloc() were left uninitialized, which could cause uninitialized data to be used in certain error paths or when new fields are added. The root cause is missing z...
CVE-2025-71113
In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - zero initialize memory allocated via sockkmalloc Several crypto user API contexts and requests allocated with sockkmalloc were left uninitialized, relying on callers to set fields explicitly. This resulted in the...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from memory allocated via sockkmalloc being uninitialized to zero, which could lead to the use of uninitialized...
Linux Distros Unpatched Vulnerability : CVE-2025-71113
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: afalg - zero initialize memory allocated via sockkmalloc Several crypto user API contexts and requests allocated with sockkmalloc were left uninitialize...
Linux Kernel RDS实现rds_cmsg_rdma_args()函数本地整数溢出漏洞
BUGTRAQ ID: 44921 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的rdscmsgrdmaargs函数中用户所提供的args-nrlocal值被限制到小于UINTMAX。这个限制并不严格,因为在计算总的iovsize时可能可能会溢出,导致分配过小的sockkmalloc。 本地用户可以通过以很大的计数值调用rdsrdmapages导致崩溃。如果没有出现崩溃,则之后还会出现内存破坏。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...